CNNVD-202602-116 Information
CNNVD ID
CNNVD-202602-116
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
LlamaIndex是LlamaIndex开源的一个 LLM 应用程序的数据框架。 LlamaIndex 0.12.23版本存在资源管理错误漏洞,该漏洞源于SimpleDirectoryReader组件存在资源管理缺陷,可能导致内存耗尽和性能下降。
Description (English)
LlamaIndex is a data frame for an LLM application that is an open source for LlamaIndex. The LlamaIndex 0.12.23 version contains an error in resource management that stems from the resource management deficiencies of the SimpleDirectory Reader component, which may lead to depletion of memory and reduced performance.
Hazard Level
High
Vulnerability Type
资源管理错误
Affected Vendor
LlamaIndex
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/run-llama/llama_index/commit/53614e2f7913c0e86b58add9470b3c900b6c60b2 https://huntr.com/bounties/7d722bb6-6567-4608-8b23-f95048d7605a https://access.redhat.com/security/cve/cve-2025-6208
Patch
https://github.com/run-llama/llama_index/releases
Share on: